The General Data Protection Regulation (GDPR) is the European Union’s sweeping new data privacy law that will impact nearly every company on the planet. Companies have had many months to prepare for this new law, but the May 25, 2018 deadline for compliance is quickly approaching.
Many believe that the GDPR law only affects companies that physically reside or do business in the EU. Unfortunately, this isn’t the case. Companies that do business with or store data from any citizen of the EU will be affected by this new law according to information we’ve read. Even something like Google Analytics could potentially impact your site since Google Analytics logs IP addresses, something the GDPR considering personal identity data.
Any personal identifying information of an EU citizen you or a third party your company uses that is logged apparently falls under this new law. Fines for breaking these laws are no small matter either.
We are not attorneys or legal experts, and therefore we are unable to provide any specific guidelines for your company. However, we do highly advise that you either seek legal counsel or do a little research to find out what your company will need to do to meet the guidelines of these upcoming new laws.
We’ve compiled a short list of articles that contain a wealth of information on this new law and steps you can take to prepare. (We do not endorse these companies and do not guarantee or imply that the information in these articles are accurate. Please seek legal counsel for accurate interpretation of the GDPR.)
- GDPR Portal (Official GDPR Site)
- General Data Protection Regulation (GDPR) Frequently Asked Questions
- What is the GDPR? (Wikipedia Article)